$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2604c1b-32eb-4ba6-811a-5cd303ae552f.roa File: a2604c1b-32eb-4ba6-811a-5cd303ae552f.roa (raw, json) Hash identifier: uWbFC3H0ILx4QBA/j7TnvEg5ZprzS6ByCHHA8B+Pfiw= Subject key identifier: BE:05:8C:88:82:F3:73:87:D5:43:EC:8F:9D:41:E1:78:84:B1:41:5B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2A6F763AEF2D7A2EEBFDD2ADCB6779B9E8769B04 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2604c1b-32eb-4ba6-811a-5cd303ae552f.roa Signing time: Fri 22 May 2026 17:01:34 +0000 ROA not before: Fri 22 May 2026 17:01:34 +0000 ROA not after: Thu 20 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dae8:a0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:6f:76:3a:ef:2d:7a:2e:eb:fd:d2:ad:cb:67:79:b9:e8:76:9b:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 22 17:01:34 2026 GMT Not After : Aug 20 23:59:59 2026 GMT Subject: serialNumber=0b09aabf7cf2f82ba7e56acaa119a92956fde55767e18576d9b7aabe27a31053, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d8:48:54:8f:33:eb:7b:54:68:5e:0c:ae:14: 81:89:36:e3:1d:09:ab:48:b7:0f:03:d7:9d:35:24: 2d:21:27:c7:ce:eb:f0:11:21:ff:0d:7d:3a:0e:96: 60:03:ab:9d:dc:1b:6d:87:2d:34:43:db:b2:99:fc: 38:06:60:fb:51:a7:6c:97:52:71:12:73:8d:dd:66: e4:5b:63:49:66:6d:73:f0:4a:0e:2e:93:84:74:cb: a9:1e:72:87:4a:98:62:2f:8b:b5:cb:4d:08:e0:11: b7:ef:fc:c5:87:05:41:d7:21:29:ce:aa:17:d7:49: 5f:7c:e3:a1:7a:17:15:76:df:7d:09:5a:14:4b:d2: 7c:b8:fc:d4:59:9c:b9:f4:25:1d:0b:18:b6:88:9c: 27:fa:41:bb:2a:fd:a0:ee:70:8e:4c:80:2e:e5:94: 27:7a:2c:16:a8:f8:76:0b:f2:0d:1e:0f:7d:e6:04: 19:9b:60:23:89:30:3d:ac:7a:61:c6:78:f0:7c:82: dc:4a:ae:1a:69:a8:13:53:0b:6f:5a:d9:af:73:e6: d0:14:ed:6a:91:72:b1:2a:0b:f1:e5:33:12:f8:60: 84:95:23:4b:ef:54:62:48:ce:4f:2b:98:c2:5e:a1: b9:01:83:7d:13:7e:7e:17:1f:3e:3b:bd:8b:51:59: 30:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:05:8C:88:82:F3:73:87:D5:43:EC:8F:9D:41:E1:78:84:B1:41:5B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2604c1b-32eb-4ba6-811a-5cd303ae552f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dae8:a0c0::/48 Signature Algorithm: sha256WithRSAEncryption 3f:f7:26:c3:a8:c9:c5:70:bd:14:1a:ff:0a:44:a7:66:62:66: b4:fc:ad:74:f2:d8:60:57:9a:92:07:6b:9d:fb:40:12:74:78: 1b:ef:c6:ea:77:94:db:cc:00:13:ad:a7:e3:fa:ce:b6:c6:37: c0:f6:2b:8c:95:b1:ec:60:b7:48:8c:e8:bd:19:23:6c:5b:ae: 9d:d5:1e:1a:73:7a:7f:6a:f6:a7:45:e2:a7:de:c4:8b:88:8b: 73:3b:1c:b4:1c:df:1a:1b:39:83:d4:2b:fb:45:21:12:d9:2e: 5c:b8:43:5b:5e:8f:57:7d:fa:00:8d:e5:82:6f:66:1c:b2:6d: e8:35:b9:05:d4:fb:a9:89:1d:19:b1:28:56:82:7f:71:23:c6: 7f:7e:0d:9f:7e:cd:a6:e5:7c:b9:b2:d8:63:71:8f:af:4e:e4: 9b:65:b0:b9:9a:d3:a1:03:31:c3:c6:93:7c:e9:e8:6d:9c:0a: 9e:c3:f6:d3:77:6f:89:d9:00:12:f1:32:ec:cc:7f:41:87:f4: a4:4d:50:c8:7c:fb:4a:35:bf:bb:6a:5c:5a:ae:23:dc:20:4e: 80:aa:a8:4f:3b:97:2d:c4:74:ec:53:54:ec:95:0e:78:72:00: ff:4e:e9:d1:90:d0:de:c6:1c:de:77:3b:13:a7:17:15:e2:97: 55:be:8c:ee -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUKm92Ou8tei7r/dKty2d5ueh2mwQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUyMjE3MDEzNFoX DTI2MDgyMDIzNTk1OVowejFJMEcGA1UEBRNAMGIwOWFhYmY3Y2YyZjgyYmE3ZTU2 YWNhYTExOWE5Mjk1NmZkZTU1NzY3ZTE4NTc2ZDliN2FhYmUyN2EzMTA1MzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAothIVI8z63tUaF4MrhSBiTbjHQmr SLcPA9edNSQtISfHzuvwESH/DX06DpZgA6ud3Btthy00Q9uymfw4BmD7Uadsl1Jx EnON3WbkW2NJZm1z8EoOLpOEdMupHnKHSphiL4u1y00I4BG37/zFhwVB1yEpzqoX 10lffOOhehcVdt99CVoUS9J8uPzUWZy59CUdCxi2iJwn+kG7Kv2g7nCOTIAu5ZQn eiwWqPh2C/INHg995gQZm2AjiTA9rHphxnjwfILcSq4aaagTUwtvWtmvc+bQFO1q kXKxKgvx5TMS+GCElSNL71RiSM5PK5jCXqG5AYN9E35+Fx8+O72LUVkwfwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFL4FjIiC83OH1UPsj51B4XiEsUFbMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2EyNjA0YzFiLTMyZWItNGJhNi04MTFhLTVjZDMwM2FlNTUyZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba6KDAMA0GCSqGSIb3DQEBCwUAA4IBAQA/9ybDqMnFcL0UGv8K RKdmYma0/K108thgV5qSB2ud+0ASdHgb78bqd5TbzAATrafj+s62xjfA9iuMlbHs YLdIjOi9GSNsW66d1R4ac3p/avanReKn3sSLiItzOxy0HN8aGzmD1Cv7RSES2S5c uENbXo9XffoAjeWCb2Ycsm3oNbkF1PupiR0ZsShWgn9xI8Z/fg2ffs2m5Xy5sthj cY+vTuSbZbC5mtOhAzHDxpN86ehtnAqew/bTd2+J2QAS8TLszH9Bh/SkTVDIfPtK Nb+7alxariPcIE6AqqhPO5ctxHTsU1TslQ54cgD/TunRkNDexhzedzsTpxcV4pdV vozu -----END CERTIFICATE-----Generated at Sun May 24 12:19:09 2026 by rpki-client